Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | secrets: load ssh key only if it exists | Franck Cuny | 2022-04-13 | 1 | -1/+1 | |
| | ||||||
* | users: add myself to the group 'nas' | Franck Cuny | 2022-04-13 | 1 | -0/+1 | |
| | ||||||
* | fish: start tmux on terminal start | Franck Cuny | 2022-04-13 | 1 | -0/+6 | |
| | ||||||
* | backups: rename system to host | Franck Cuny | 2022-04-11 | 1 | -1/+1 | |
| | | | | Since this is a host level backup. | |||||
* | grafana: backup the whole directory | Franck Cuny | 2022-04-11 | 1 | -1/+1 | |
| | ||||||
* | tahoe: fix backup configuration | Franck Cuny | 2022-04-11 | 1 | -2/+3 | |
| | ||||||
* | home: enable ssh config on trusted hosts | Franck Cuny | 2022-04-10 | 1 | -0/+1 | |
| | ||||||
* | secrets: move all the secrets under module/ | Franck Cuny | 2022-04-10 | 18 | -71/+76 | |
| | | | | | Refactor a bit the configuration, which should simplify the management and usage of secrets from now on. | |||||
* | add a module for backup with restic | Franck Cuny | 2022-04-10 | 8 | -75/+93 | |
| | | | | Do a single backup for the host, instead of running multiple ones. | |||||
* | tahoe: enable network with early boot | Franck Cuny | 2022-04-09 | 2 | -11/+19 | |
| | | | | So we can unlock the disks remotely. | |||||
* | delete configuration related to colors | Franck Cuny | 2022-04-09 | 7 | -154/+9 | |
| | | | | | | | Setting colors is hard, and it's an easy way to waste time. The only color settings I keep are the ones related to waybar, to make sure it does not look like a Christmas tree. Which means that most applications are going to use their default theme, and I'm OK with that. | |||||
* | add a few more packages for home/ | Franck Cuny | 2022-04-09 | 8 | -1/+50 | |
| | ||||||
* | install documentations (man) | Franck Cuny | 2022-04-09 | 4 | -4/+29 | |
| | ||||||
* | add pcmanfm and easyeffects | Franck Cuny | 2022-04-09 | 4 | -0/+12 | |
| | ||||||
* | remove `mkHome` from lib | Franck Cuny | 2022-04-09 | 3 | -61/+1 | |
| | | | | | home-manager configuration is used as a module, we don't have two different ways to configure the host anymore. | |||||
* | small fixes | Franck Cuny | 2022-04-09 | 5 | -5/+5 | |
| | ||||||
* | add a few more modules to home/ and delete stuff | Franck Cuny | 2022-04-09 | 29 | -662/+93 | |
| | ||||||
* | delete all CLI modules | Franck Cuny | 2022-04-08 | 8 | -197/+0 | |
| | | | | Everything is under home/ now | |||||
* | delete all devel modules | Franck Cuny | 2022-04-08 | 4 | -28/+1 | |
| | | | | They are all under home/ now | |||||
* | remove old 'trusted' modules | Franck Cuny | 2022-04-08 | 7 | -151/+1 | |
| | | | | All of them are now under home/ | |||||
* | carmel: configure the desktop properly | Franck Cuny | 2022-04-08 | 3 | -1/+22 | |
| | ||||||
* | hosts: rename hardware-configuration to hardware | Franck Cuny | 2022-04-08 | 6 | -3/+3 | |
| | ||||||
* | hosts: add services to tahoe | Franck Cuny | 2022-04-08 | 3 | -11/+10 | |
| | ||||||
* | delete unneeded modules | Franck Cuny | 2022-04-08 | 3 | -96/+0 | |
| | ||||||
* | services: add avahi | Franck Cuny | 2022-04-08 | 2 | -0/+15 | |
| | ||||||
* | users: add myself to "cdrom" group | Franck Cuny | 2022-04-08 | 1 | -0/+1 | |
| | | | | Otherwise I can't run `abcde`. | |||||
* | delete unused module | Franck Cuny | 2022-04-08 | 1 | -25/+0 | |
| | ||||||
* | home: move waybar's style to a CSS file | Franck Cuny | 2022-04-08 | 2 | -87/+84 | |
| | ||||||
* | home: move css/config for wofi to external files | Franck Cuny | 2022-04-08 | 3 | -52/+49 | |
| | ||||||
* | alacritty: use light colors | Franck Cuny | 2022-04-08 | 2 | -2/+34 | |
| | ||||||
* | aptos: consume the new profiles | Franck Cuny | 2022-04-08 | 4 | -3/+25 | |
| | | | | aptos is now using the new home-manager setup. | |||||
* | profiles: create a few new profiles | Franck Cuny | 2022-04-08 | 5 | -1/+67 | |
| | ||||||
* | modules: add a few more | Franck Cuny | 2022-04-08 | 8 | -3/+100 | |
| | ||||||
* | home: add more configurations for home-manager | Franck Cuny | 2022-04-08 | 22 | -0/+829 | |
| | ||||||
* | home: fix for yt-dlp configuration | Franck Cuny | 2022-04-07 | 1 | -1/+1 | |
| | ||||||
* | home: misc fixes | Franck Cuny | 2022-04-07 | 10 | -23/+24 | |
| | ||||||
* | initial attempt to reconfigure home-manager | Franck Cuny | 2022-04-07 | 17 | -1/+345 | |
| | | | | | | | | | | All the modules that are needed for home-manager should be under `home/`, and each host will have a `host.nix` where the modules are enabled as needed. Later on we can create some profiles to make it easier to consume the configuration. I apply this only to tahoe for now, as the amount of packages needed for my user are pretty limited. | |||||
* | gitea: fix the module | Franck Cuny | 2022-04-06 | 1 | -3/+3 | |
| | | | | | Quick fix for now, we will add these values as options to the module once we confirm everything is still working. | |||||
* | modules: import packages | Franck Cuny | 2022-04-06 | 1 | -1/+2 | |
| | ||||||
* | refactor transmission and metrics-exporter | Franck Cuny | 2022-04-06 | 8 | -51/+56 | |
| | ||||||
* | refactor traefik | Franck Cuny | 2022-04-06 | 4 | -97/+105 | |
| | ||||||
* | refactor rclone to a module | Franck Cuny | 2022-04-06 | 4 | -33/+39 | |
| | ||||||
* | refactor gitea as a module | Franck Cuny | 2022-04-06 | 4 | -42/+58 | |
| | ||||||
* | prometheus: proper name for the option | Franck Cuny | 2022-04-06 | 1 | -1/+1 | |
| | ||||||
* | refactor grafana as a module | Franck Cuny | 2022-04-06 | 8 | -42/+48 | |
| | ||||||
* | refactor prometheus as a module | Franck Cuny | 2022-04-06 | 4 | -180/+190 | |
| | ||||||
* | refactor unifi to a module | Franck Cuny | 2022-04-06 | 3 | -4/+18 | |
| | ||||||
* | import navidrome with other services | Franck Cuny | 2022-04-06 | 1 | -1/+2 | |
| | ||||||
* | refactor navidrome to a module | Franck Cuny | 2022-04-06 | 3 | -28/+46 | |
| | ||||||
* | enable AMD module correctly | Franck Cuny | 2022-04-06 | 2 | -2/+2 | |
| | ||||||
* | refactor samba to a proper module | Franck Cuny | 2022-04-06 | 4 | -35/+61 | |
| | | | | The list of public share is configurable too. | |||||
* | refactor boot configuration to a module | Franck Cuny | 2022-04-06 | 11 | -64/+68 | |
| | | | | | | | | | We don't need the previous `hosts/common/system` configs anymore, as everything has been moved out. We keep some boot configuration for carmel in the host configuration for now, but I need to check why I don't have similar settings for tahoe (since I also need to unlock the host remotely). | |||||
* | refactor configuration for AMD | Franck Cuny | 2022-04-06 | 4 | -67/+79 | |
| | ||||||
* | refactor intel related configuration | Franck Cuny | 2022-04-05 | 6 | -38/+40 | |
| | ||||||
* | refactor modules for btrfs, ssd, and fwupd | Franck Cuny | 2022-04-05 | 8 | -12/+19 | |
| | ||||||
* | refactor network configuration | Franck Cuny | 2022-04-05 | 8 | -29/+70 | |
| | ||||||
* | refactor security to a module | Franck Cuny | 2022-04-05 | 3 | -3/+3 | |
| | ||||||
* | refactor users to a module | Franck Cuny | 2022-04-05 | 3 | -6/+11 | |
| | ||||||
* | refactor default packages to a module | Franck Cuny | 2022-04-05 | 2 | -15/+8 | |
| | ||||||
* | move locale configuration to a module | Franck Cuny | 2022-04-05 | 3 | -9/+3 | |
| | ||||||
* | console configuration is moved to a module | Franck Cuny | 2022-04-05 | 3 | -6/+7 | |
| | ||||||
* | create a profile for laptop | Franck Cuny | 2022-04-05 | 7 | -2/+53 | |
| | ||||||
* | carmel: enable the sound | Franck Cuny | 2022-04-05 | 1 | -0/+1 | |
| | ||||||
* | network: move tailscale in modules | Franck Cuny | 2022-04-05 | 9 | -63/+78 | |
| | | | | Move the networking configuration for the hosts to its own file. | |||||
* | ssh: refactor to a module | Franck Cuny | 2022-04-05 | 5 | -8/+19 | |
| | | | | Also install mosh and ensure the firewall opens the correct ports. | |||||
* | nix: refactor to a module | Franck Cuny | 2022-04-05 | 4 | -6/+4 | |
| | ||||||
* | sound: add a new module | Franck Cuny | 2022-04-05 | 11 | -44/+59 | |
| | | | | | | | | | | This is the start of yet another refactoring of the configuration. Sound configuration is moving to a module, and we enable it as needed at the host level. It takes care of configuring pipewire and install the packages needed too. This module is applied to the laptop and the desktop. | |||||
* | waybar: fix colors for the workspaces | Franck Cuny | 2022-04-05 | 1 | -9/+9 | |
| | ||||||
* | dashboard: remove ping metrics | Franck Cuny | 2022-04-04 | 1 | -96/+3 | |
| | | | | We're using the ones from the prober | |||||
* | prometheus: fix configuration | Franck Cuny | 2022-04-04 | 1 | -3/+1 | |
| | ||||||
* | prometheus: we need to specify the IP protocol | Franck Cuny | 2022-04-04 | 1 | -1/+5 | |
| | | | | | | | | If we don't, by default we try over ipv6, and this is not going to work well for us (yet): ``` ts=2022-04-05T01:39:13.830414184Z caller=main.go:130 module=https_2xx target=https://notes.fcuny.net level=error msg="Error for HTTP request" err="Get \"https://[2a09:8280:1::a:2aed]\": dial tcp [2a09:8280:1::a:2aed]:443: connect: network is unreachable" ``` | |||||
* | prometheus: I'll get this right this time | Franck Cuny | 2022-04-04 | 1 | -5/+3 | |
| | ||||||
* | prometheus: set the scheme for the URLs | Franck Cuny | 2022-04-04 | 1 | -5/+5 | |
| | ||||||
* | prometheus: add scraper for HTTP | Franck Cuny | 2022-04-04 | 1 | -0/+28 | |
| | ||||||
* | prometheus: configure correctly the blackbox | Franck Cuny | 2022-04-04 | 1 | -10/+23 | |
| | ||||||
* | prometheus: attempt to configure blackbox exporter | Franck Cuny | 2022-04-04 | 1 | -0/+34 | |
| | ||||||
* | dashboard: more update for traefik | Franck Cuny | 2022-04-04 | 1 | -452/+1478 | |
| | ||||||
* | dashboards: more updates for traefik | Franck Cuny | 2022-04-04 | 1 | -1/+2 | |
| | ||||||
* | grafana: try to configure the data source | Franck Cuny | 2022-04-04 | 1 | -9/+28 | |
| | ||||||
* | grafana: add dashboard for traefik | Franck Cuny | 2022-04-04 | 1 | -0/+783 | |
| | ||||||
* | grafana: show last 6 hours for node exporter | Franck Cuny | 2022-04-03 | 1 | -2/+2 | |
| | ||||||
* | users: ensure I'm in the docker group | Franck Cuny | 2022-04-03 | 1 | -1/+1 | |
| | ||||||
* | ncmpcpp: delete configuration | Franck Cuny | 2022-04-03 | 1 | -19/+0 | |
| | | | | I don't use this program anymore. | |||||
* | home-manager: add `isTrusted` | Franck Cuny | 2022-04-03 | 10 | -4/+7 | |
| | | | | | | | | | | Install and configure some programs only on trusted machines. On trusted machines, my mails, GPG and a few other things are configured. A machine where this is not needed on a regular basis to get things done don't need that much information. Also rename `desktop/trust` to `trusted`, in case we want these packages on a host that is not a desktop, and `trusted` is a better description. | |||||
* | Revert "create a new role for navidrome" | Franck Cuny | 2022-04-03 | 3 | -35/+26 | |
| | | | | This reverts commit 814a495e9c74e3211c6b6640397111115832207b. | |||||
* | create a new role for navidrome | Franck Cuny | 2022-04-03 | 3 | -26/+35 | |
| | | | | Apply the role to tahoe. | |||||
* | firefox: set duckduckgo as default search engine | Franck Cuny | 2022-04-03 | 1 | -9/+20 | |
| | | | | This is not really working, need to figure this out. | |||||
* | set the music directory based on host's name | Franck Cuny | 2022-04-03 | 1 | -4/+8 | |
| | ||||||
* | rename `desktop` to `isDesktop` | Franck Cuny | 2022-04-03 | 5 | -10/+11 | |
| | | | | | | | | The variable is used to define the kind of machine we're managing. `isDesktop` is a bit more descriptive. We import `devel` for all machines, and we fine tune which packages we want to install based on the value of `isDesktop`. | |||||
* | remove mytools | Franck Cuny | 2022-04-03 | 2 | -47/+1 | |
| | | | | I don't need this for now, as I've replace music-organizer with beets. | |||||
* | email: use afew to filter emails | Franck Cuny | 2022-04-03 | 1 | -25/+17 | |
| | | | | This is still not working as I want, will need more iteration. | |||||
* | simplify multimedia for the desktop | Franck Cuny | 2022-04-03 | 8 | -119/+16 | |
| | | | | | | | | | | | I don't need to have systemd units to synchronize medias from a desktop to the NAS: I'll download all the medias on the NAS directly. I don't need to have a module for each type of media, there's not enough configuration to justify that complexity. I also don't need anymore mpd and co. as I'm using navidrome to host the music on the NAS and sublime-music to listen to it on the desktop. | |||||
* | nas: add videos to the backups | Franck Cuny | 2022-04-02 | 1 | -7/+2 | |
| | | | | | We also don't need the music-organizer anymore since we're switching to beets. | |||||
* | consolidate configuration for music curation | Franck Cuny | 2022-04-01 | 3 | -18/+14 | |
| | ||||||
* | swaybar: simplify colors | Franck Cuny | 2022-03-31 | 1 | -18/+17 | |
| | ||||||
* | beets: how to manage soundtracks | Franck Cuny | 2022-03-31 | 1 | -2/+1 | |
| | ||||||
* | beets: more configuration | Franck Cuny | 2022-03-31 | 1 | -2/+17 | |
| | ||||||
* | beets: fix configuration + discogs | Franck Cuny | 2022-03-30 | 1 | -4/+5 | |
| | ||||||
* | beets: a few configuration changes | Franck Cuny | 2022-03-30 | 1 | -2/+6 | |
| | ||||||
* | beets: tool to curate my music collection | Franck Cuny | 2022-03-30 | 2 | -2/+27 | |
| | ||||||
* | nas: backup navidrome data and add music subdomain | Franck Cuny | 2022-03-28 | 2 | -0/+14 | |
| | ||||||
* | nas: bind navidrome to all interfaces | Franck Cuny | 2022-03-28 | 1 | -1/+4 | |
| | ||||||
* | nas: initial setup for navidrome | Franck Cuny | 2022-03-28 | 2 | -0/+9 | |
| | ||||||
* | nas: install music-organizer from the main branch | Franck Cuny | 2022-03-27 | 3 | -10/+27 | |
| | ||||||
* | nas: install correctly music-organizer | Franck Cuny | 2022-03-27 | 1 | -1/+1 | |
| | ||||||
* | nas: install music-organizer | Franck Cuny | 2022-03-27 | 3 | -8/+44 | |
| | ||||||
* | prometheus: stop scraping the NAS | Franck Cuny | 2022-03-26 | 1 | -4/+2 | |
| | | | | we're shutting it down! | |||||
* | common: ensure zsh is installed | Franck Cuny | 2022-03-25 | 1 | -0/+1 | |
| | ||||||
* | gitea: remove invalid configuration | Franck Cuny | 2022-03-25 | 1 | -1/+0 | |
| | ||||||
* | alacritty: use the default colors | Franck Cuny | 2022-03-25 | 2 | -53/+0 | |
| | ||||||
* | shell: switch from zsh to fish | Franck Cuny | 2022-03-25 | 5 | -53/+14 | |
| | | | | why not ? | |||||
* | docs: add more documentation! | Franck Cuny | 2022-03-25 | 3 | -0/+207 | |
| | ||||||
* | rclone: correct path for the backups | Franck Cuny | 2022-03-15 | 1 | -2/+2 | |
| | ||||||
* | sway: switch back to waybar | Franck Cuny | 2022-03-14 | 2 | -72/+132 | |
| | | | | | Get rid of icons, use plain text with different colors depending on the state. | |||||
* | theme: dont' set alacritty bg and fg | Franck Cuny | 2022-03-14 | 1 | -3/+0 | |
| | ||||||
* | rclone: fix the path | Franck Cuny | 2022-03-14 | 1 | -1/+1 | |
| | ||||||
* | prometheus: scrape gitea metrics | Franck Cuny | 2022-03-13 | 1 | -0/+6 | |
| | ||||||
* | gitea: enable metrics endpoint | Franck Cuny | 2022-03-13 | 1 | -0/+1 | |
| | ||||||
* | server: typo | Franck Cuny | 2022-03-13 | 1 | -4/+2 | |
| | ||||||
* | rclone: rewrite the service unit | Franck Cuny | 2022-03-13 | 1 | -5/+6 | |
| | ||||||
* | default: install ethtool everywhere | Franck Cuny | 2022-03-12 | 1 | -0/+1 | |
| | ||||||
* | prometheus: collect more stuff | Franck Cuny | 2022-03-12 | 1 | -1/+1 | |
| | ||||||
* | hosts: add profiles | Franck Cuny | 2022-03-12 | 4 | -17/+18 | |
| | | | | Profiles contain a collection of modules. | |||||
* | desktop: element and theme | Franck Cuny | 2022-03-12 | 1 | -0/+4 | |
| | ||||||
* | terminal: nixfmt | Franck Cuny | 2022-03-12 | 1 | -10/+4 | |
| | ||||||
* | wofi: color + nixfmt | Franck Cuny | 2022-03-12 | 1 | -4/+2 | |
| | ||||||
* | notification: fix timeout and document | Franck Cuny | 2022-03-12 | 1 | -8/+8 | |
| | ||||||
* | devel: add more packages | Franck Cuny | 2022-03-12 | 1 | -1/+1 | |
| | ||||||
* | users: add another ssh key | Franck Cuny | 2022-03-12 | 1 | -2/+8 | |
| | ||||||
* | containers: enable dockerd and containerd on aptos | Franck Cuny | 2022-03-12 | 1 | -0/+11 | |
| | ||||||
* | rclone: add users backup | Franck Cuny | 2022-03-11 | 1 | -11/+12 | |
| | ||||||
* | nas: enable rclone configuration | Franck Cuny | 2022-03-11 | 1 | -0/+1 | |
| | ||||||
* | prometheus: scrap more endpoints | Franck Cuny | 2022-03-11 | 1 | -0/+30 | |
| | ||||||
* | rclone: synchronize restic repo to GCS | Franck Cuny | 2022-03-11 | 4 | -0/+32 | |
| | | | | | | Add a couple of secrets to store the configuration and the service account, and add a timer to synchronize the restic repository to a GCS bucket once a day. | |||||
* | wm: ensure element is assigned to space #4 | Franck Cuny | 2022-03-10 | 1 | -0/+1 | |
| | ||||||
* | sway: formatting, colors, wlogout | Franck Cuny | 2022-03-09 | 1 | -44/+75 | |
| | ||||||
* | traefik: typo | Franck Cuny | 2022-03-09 | 1 | -1/+1 | |
| | ||||||
* | traefik: make the rules as specific as possible | Franck Cuny | 2022-03-09 | 1 | -2/+4 | |
| | | | | Otherwise, `git` will conflict, since it exists on both domains. | |||||
* | traefik: typo | Franck Cuny | 2022-03-09 | 1 | -5/+5 | |
| | ||||||
* | gitea: typo | Franck Cuny | 2022-03-09 | 1 | -1/+1 | |
| | ||||||
* | traefik: handle fcuny.net and fcuny.xyz | Franck Cuny | 2022-03-09 | 1 | -7/+15 | |
| | | | | | | | | | | | | | fcuny.net is for public facing domains, while fcuny.xyz are for domains on the tailscale network. I need to support configuration in traefik for both. The main difference, for traefik, is the domain name and which let's encrypt challenge to use (DNS for TS, HTTP for public). Refactor the function `mkServiceConfig` to accept the domain and LE challenge as argument, and add new entries for git.fcuny.net and git.fcuny.xyz. | |||||
* | gitea: do a backup with restic | Franck Cuny | 2022-03-09 | 1 | -0/+12 | |
| | ||||||
* | gitea: we need to specify the user for the DB | Franck Cuny | 2022-03-09 | 1 | -1/+4 | |
| | ||||||
* | go: ensure GOBIN is in PATH | Franck Cuny | 2022-03-09 | 1 | -1/+3 | |
| | ||||||
* | system: install sqlite | Franck Cuny | 2022-03-09 | 1 | -3/+3 | |
| | | | | It's always useful to have it around. | |||||
* | gitea: initial configuration | Franck Cuny | 2022-03-08 | 2 | -0/+28 | |
| | ||||||
* | nas: backup photos and music | Franck Cuny | 2022-03-08 | 2 | -0/+118 | |
| | | | | | | | Instead of rsync-ing these folders to a GCS bucket, I should instead do a backup. If I screw up something, the content will be sync-ed, and I won't be able to restore it. It's better (maybe more expensive, but that's OK) to keep snapshots and be able to restore. | |||||
* | backups: spread them so they don't clash | Franck Cuny | 2022-03-07 | 3 | -0/+3 | |
| | | | | | If they start running at the same time, they won't be able to succeed since there's a global lock on the repository. | |||||
* | grafana: backup the data directory | Franck Cuny | 2022-03-07 | 1 | -0/+14 | |
| | ||||||
* | prometheus: backup the data directory | Franck Cuny | 2022-03-07 | 1 | -0/+14 | |
| | ||||||
* | unifi: backup the data to the local reo | Franck Cuny | 2022-03-07 | 1 | -0/+14 | |
| | ||||||
* | restic: add the secret for the repo 'systems' | Franck Cuny | 2022-03-07 | 2 | -0/+14 | |
| | ||||||
* | prometheus: scrap unifi poller on the correct IP | Franck Cuny | 2022-03-06 | 1 | -1/+1 | |
| | ||||||
* | prometheus: scrape from unifi-poller | Franck Cuny | 2022-03-06 | 1 | -31/+40 | |
| | ||||||
* | unifi: set the correct name for the poller's unit | Franck Cuny | 2022-03-06 | 1 | -2/+2 | |
| | ||||||
* | traefik: proper configuration for unifi | Franck Cuny | 2022-03-06 | 1 | -0/+14 | |
| | ||||||
* | unifi: configure the poller | Franck Cuny | 2022-03-06 | 3 | -5/+33 | |
| | ||||||
* | unifi: add unifi on the NAS | Franck Cuny | 2022-03-06 | 2 | -0/+54 | |
| | ||||||
* | transmission: disable the rpc allowlist | Franck Cuny | 2022-03-06 | 1 | -2/+1 | |
| | | | | This is not working as I think, will follow up later. | |||||
* | traefik: add transmission (bt.fcuny.xyz) | Franck Cuny | 2022-03-06 | 1 | -2/+4 | |
| | ||||||
* | nas: install transmission | Franck Cuny | 2022-03-06 | 2 | -0/+36 | |
| | | | | | Create a user and group 'nas' so we can run tranmission in it. This will also help us to enable some specific permissions on some directories. | |||||
* | grafana: rename the instance for the router | Franck Cuny | 2022-03-06 | 1 | -16/+16 | |
| | ||||||
* | grafana: add a few more dashboards | Franck Cuny | 2022-03-06 | 3 | -0/+10539 | |
| | ||||||
* | tahoe: enable tailscale | Franck Cuny | 2022-03-06 | 1 | -0/+1 | |
| | ||||||
* | traefik: getting a working configuration | Franck Cuny | 2022-03-06 | 1 | -22/+21 | |
| | ||||||
* | traefik: second attempt, simple | Franck Cuny | 2022-03-06 | 2 | -52/+35 | |
| | ||||||
* | traefik: initial configuration | Franck Cuny | 2022-03-06 | 4 | -0/+90 | |
| | | | | | | | | | I want to run traefik on the NAS, so I can reach grafana and other future services running on that host. To manage TLS, we use let's encrypt with a DNS challenge. For this to work we need a service account configuration, that is encrypted with age. | |||||
* | backups: unit to run maintenance on my backups | Franck Cuny | 2022-03-05 | 2 | -0/+26 | |
| | | | | | This will be run via a timer once a day, to perform maintenance on my backups on the nas. | |||||
* | prometheus: scrape nodeexporter for the rtr | Franck Cuny | 2022-03-05 | 1 | -15/+24 | |
| | ||||||
* | backups: do the backup over ssh | Franck Cuny | 2022-03-05 | 1 | -7/+7 | |
| | | | | | We're using ssh instead of the rest server, we're also pushing them to a different repo, where I don't need to be root. | |||||
* | samba: fix path for music, add videos | Franck Cuny | 2022-03-05 | 1 | -1/+7 | |
| | ||||||
* | tahoe: remove creation of some directories | Franck Cuny | 2022-03-05 | 1 | -29/+9 | |
| | ||||||
* | tahoe: new hardware configuratio | Franck Cuny | 2022-03-05 | 1 | -21/+13 | |
| | ||||||
* | aptos: remove mem_sleep_default | Franck Cuny | 2022-03-05 | 1 | -1/+0 | |
| | | | | The laptop was rebooting when I'd open the lid. | |||||
* | tailscale: add tailscale to the laptop (aptos) | Franck Cuny | 2022-03-05 | 2 | -0/+7 | |
| | ||||||
* | git: sign with GPG only when one desktop | Franck Cuny | 2022-03-05 | 3 | -10/+30 | |
| | | | | | Move the configuration for git that requires the signing to pass, and use the `pass-git-helper` to manage the secrets. | |||||
* | git: nixfmt | Franck Cuny | 2022-03-05 | 1 | -3/+1 | |
| | ||||||
* | agenix: rekey secrets | Franck Cuny | 2022-03-05 | 3 | -7/+13 | |
| | | | | Reinstalled tahoe, new ssh key for the host. | |||||
* | aptos: nixfmt | Franck Cuny | 2022-03-04 | 1 | -17/+10 | |
| | ||||||
* | scan-print: tools for scanning and printing | Franck Cuny | 2022-03-04 | 2 | -0/+6 | |
| | ||||||
* | home: switch to emacsclient for EDITOR | Franck Cuny | 2022-03-04 | 1 | -1/+2 | |
| | ||||||
* | devel: install nixfmt | Franck Cuny | 2022-03-04 | 1 | -1/+1 | |
| | | | | Useful to format modules consistently. | |||||
* | nix: format the module | Franck Cuny | 2022-03-04 | 1 | -10/+3 | |
| | ||||||
* | ssh: new module, and load it for my user | Franck Cuny | 2022-03-04 | 2 | -1/+19 | |
| | ||||||
* | nix: format the buffer | Franck Cuny | 2022-03-04 | 1 | -14/+3 | |
| | ||||||
* | zsh: move the configuration inline | Franck Cuny | 2022-03-02 | 2 | -31/+30 | |
| | | | | I don't have a lot of things I care about for zsh, I can inline everything. | |||||
* | tahoe: enable wireguard | Franck Cuny | 2022-03-02 | 1 | -0/+1 | |
| | ||||||
* | grafana: disable analytics correctly | Franck Cuny | 2022-03-02 | 1 | -1/+2 | |
| | ||||||
* | wireguard: set the externalIP | Franck Cuny | 2022-03-02 | 1 | -0/+3 | |
| | ||||||
* | wireguard: drop configuration for aptos | Franck Cuny | 2022-03-02 | 1 | -7/+0 | |
| | | | | This is done in the module itself. | |||||
* | wireguard: revert to previous port | Franck Cuny | 2022-03-02 | 1 | -1/+1 | |
| | ||||||
* | prometheus: relabel some machines | Franck Cuny | 2022-03-02 | 1 | -12/+20 | |
| | | | | | Don't use the IP from wireguard as the name of the host, let's map to the actual hostname. | |||||
* | wireguard: use agenix from the module | Franck Cuny | 2022-03-02 | 1 | -2/+8 | |
| | | | | | This is the correct way to set up the private key, let's see if this works consistently across hosts and reboots. | |||||
* | users: remove rsa key | Franck Cuny | 2022-03-02 | 1 | -1/+0 | |
| | ||||||
* | grafana: disable analytics | Franck Cuny | 2022-03-02 | 1 | -0/+1 | |
| | ||||||
* | secrets: add a new key and rekey existing keys | Franck Cuny | 2022-03-01 | 3 | -20/+22 | |
| | ||||||
* | grafana: provision dashboards | Franck Cuny | 2022-02-28 | 2 | -0/+14120 | |
| | | | | Start with node-exporter-full dashboard. | |||||
* | grafana: setup provisioning correctly | Franck Cuny | 2022-02-28 | 1 | -6/+9 | |
| | ||||||
* | grafana: fix | Franck Cuny | 2022-02-28 | 1 | -1/+1 | |
| | ||||||
* | grafana: configure admin user and data sources | Franck Cuny | 2022-02-28 | 1 | -1/+9 | |
| | ||||||
* | grafana: initial configuration | Franck Cuny | 2022-02-28 | 2 | -0/+10 | |
| | ||||||
* | prometheus: initial configuration for the server | Franck Cuny | 2022-02-28 | 2 | -0/+30 | |
| | | | | | | | Run prometheus via systemd, and configure to pull node-exporter's metrics from two hosts. The retention is set for 3 years. | |||||
* | users: change my ssh key for the laptop | Franck Cuny | 2022-02-27 | 1 | -1/+2 | |
| | ||||||
* | hosts: ensure we have bash and zsh | Franck Cuny | 2022-02-27 | 1 | -0/+3 | |
| | ||||||
* | nas: consume everything from the server profile | Franck Cuny | 2022-02-27 | 1 | -0/+1 | |
| | ||||||
* | server: create a new profile | Franck Cuny | 2022-02-27 | 2 | -0/+19 | |
| | | | | | This is a profile for servers related stuff. We start with monitoring for now. | |||||
* | firefox: a few more settings | Franck Cuny | 2022-02-27 | 1 | -4/+11 | |
| | ||||||
* | tahoe: create some directories | Franck Cuny | 2022-02-27 | 1 | -0/+15 | |
| | | | | Ensure at least /data/media/music is created with the proper ownership. | |||||
* | samba: fix configuration | Franck Cuny | 2022-02-27 | 1 | -3/+3 | |
| | | | | | Some settings were missing, others incorrect, and the name of the share was also incorrect. | |||||
* | tahoe: include NAS profile | Franck Cuny | 2022-02-27 | 1 | -0/+1 | |
| | ||||||
* | NAS: initial configuration | Franck Cuny | 2022-02-27 | 2 | -0/+34 | |
| | | | | For now we only want samba on it. | |||||
* | hardware: enable btrfs scrubber and fstrimmer | Franck Cuny | 2022-02-27 | 1 | -0/+3 | |
| | ||||||
* | i3status: clean up formatting | Franck Cuny | 2022-02-27 | 1 | -2/+2 | |
| | ||||||
* | firefox: add plugins and configurations | Franck Cuny | 2022-02-27 | 1 | -0/+29 | |
| | ||||||
* | flake: add new overlay: NUR | Franck Cuny | 2022-02-27 | 3 | -1/+22 | |
| | | | | NUR is the nux user repository, which provides additional packages. | |||||
* | docs: add partition setup for the NAS | Franck Cuny | 2022-02-27 | 1 | -2/+43 | |
| | ||||||
* | xdg: let's drop the mime configuration | Franck Cuny | 2022-02-27 | 1 | -13/+0 | |
| | | | | Let's rely on the default for now. | |||||
* | software: drop nautilus, add a few more things | Franck Cuny | 2022-02-27 | 2 | -5/+13 | |
| | | | | | | | | | Replace nautilus with pcmanfm, which is more than enough for my needs (I still can't open correctly images / PDF with nautilus, I don't care why). Add a few more packages (seahorse, easyeffects) to improve usability of the desktop. | |||||
* | pam: drop GDM configuration | Franck Cuny | 2022-02-27 | 1 | -2/+0 | |
| | | | | I don't use GDM anymore. | |||||
* | aptos: use the hardware module for xps9300 | Franck Cuny | 2022-02-27 | 2 | -1/+1 | |
| | ||||||
* | hardware: start capturing hardware related stuff | Franck Cuny | 2022-02-27 | 2 | -0/+10 | |
| | | | | | Create a new module for hardware related things, in order to configure correctly the various machines. | |||||
* | sway: import systemd environments on startup | Franck Cuny | 2022-02-27 | 1 | -0/+3 | |
| | ||||||
* | sway: assign applications to workspaces | Franck Cuny | 2022-02-27 | 1 | -0/+5 | |
| | ||||||
* | mako: run with systemd | Franck Cuny | 2022-02-27 | 1 | -5/+16 | |
| | ||||||
* | devel: install LSP for nix | Franck Cuny | 2022-02-27 | 1 | -0/+1 | |
| | ||||||
* | mako: add notification daemon | Franck Cuny | 2022-02-27 | 2 | -0/+16 | |
| | ||||||
* | wofi: tweak the UI | Franck Cuny | 2022-02-27 | 2 | -43/+26 | |
| | ||||||
* | swaylock: don't display the keyboard layout | Franck Cuny | 2022-02-27 | 1 | -0/+1 | |
| | ||||||
* | sway: re-organize the modules | Franck Cuny | 2022-02-27 | 7 | -42/+25 | |
| | | | | | Rename 'sway' to 'wm' to make it more generic; rename some of the other modules (e.g. 'wofi' to 'launcher'), for the same reason. | |||||
* | hosts: add tahoe, the new NAS | Franck Cuny | 2022-02-27 | 3 | -0/+120 | |
| | ||||||
* | docs: backups! | Franck Cuny | 2022-02-24 | 1 | -0/+197 | |
| | ||||||
* | agenix: store wireguard key in persistent storage | Franck Cuny | 2022-02-24 | 2 | -4/+9 | |
| | | | | | | The key was created under /run/agenix, which is wiped out after a reboot. The key being absent prevents the wireguard interface to come up. Store the key somewhere persistent to prevent this to happen. | |||||
* | backups: initial configuration | Franck Cuny | 2022-02-24 | 2 | -0/+17 | |
| | ||||||
* | gnome: add more gnome settings | Franck Cuny | 2022-02-24 | 1 | -1/+14 | |
| | | | | | | | Without these settings a few things are not working correctly (nautilus can't browse ssh servers for example). This module needs to be renamed too. | |||||
* | sway: let's drop this - I don't know what it does | Franck Cuny | 2022-02-24 | 1 | -1/+0 | |
| | | | | I can see that later on. | |||||
* | xserver: drop it completely | Franck Cuny | 2022-02-24 | 1 | -14/+0 | |
| | | | | | | | | | | | | | Let's remove this, I was only using it to get GDM running, but that's causing a bunch of issues so far: - not all environment variables are loaded correctly - some units are not loaded in time When trying to use xorg and i3, I have way too many tears and I can't figure out a proper configuration. To make it easier, I'm going to keep sway and start `sway` from `tty1` directly. | |||||
* | polybar: delete configuration | Franck Cuny | 2022-02-24 | 11 | -143/+0 | |
| | | | | This is not needed anymore, we can remove it completely. | |||||
* | swaylock: background color | Franck Cuny | 2022-02-22 | 1 | -2/+1 | |
| | ||||||
* | emacs: install aspell correctly | Franck Cuny | 2022-02-22 | 1 | -4/+2 | |
| | ||||||
* | dev: a few more packages to install | Franck Cuny | 2022-02-21 | 1 | -0/+5 | |
| | ||||||
* | ssh: authenticate only using ssh key | Franck Cuny | 2022-02-21 | 2 | -0/+8 | |
| | ||||||
* | devel: create new directory for devel modules | Franck Cuny | 2022-02-21 | 5 | -2/+16 | |
| | | | | | Add python, and move go from the cli modules. Install these modules only if we're a "desktop". | |||||
* | docs: update wireguard setup | Franck Cuny | 2022-02-21 | 1 | -0/+2 | |
| | ||||||
* | tahoe: wireguard setup | Franck Cuny | 2022-02-21 | 3 | -0/+14 | |
| | ||||||
* | syncthing: enable the module | Franck Cuny | 2022-02-21 | 1 | -0/+1 | |
| | ||||||
* | emacs: add aspell and dictionaries | Franck Cuny | 2022-02-21 | 2 | -0/+11 | |
| | ||||||
* | terminal: live reload of alacritty's configuration | Franck Cuny | 2022-02-21 | 1 | -0/+1 | |
| | ||||||
* | docs: commands to run | Franck Cuny | 2022-02-21 | 1 | -0/+11 | |
| | ||||||
* | wireguard: module and peers configurations | Franck Cuny | 2022-02-21 | 5 | -0/+82 | |
| | | | | | | | | | Add a new module to automatically configure the peers for wireguard. The module needs a configuration file (in `configs/wireguard.toml`) which lists all the peers, their IP and and their public keys. The secret keys is encrypted as a secret with agenix. There's some initial documentation on how to use this setup. | |||||
* | secrets: initial config and a first secret | Franck Cuny | 2022-02-21 | 2 | -0/+20 | |
| |